From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 49013138CBD for ; Tue, 10 Mar 2015 19:30:48 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 64A61E0845; Tue, 10 Mar 2015 19:30:41 +0000 (UTC) Received: from mail-we0-f174.google.com (mail-we0-f174.google.com [74.125.82.174]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 2FED6E0825 for ; Tue, 10 Mar 2015 19:30:40 +0000 (UTC) Received: by wesu56 with SMTP id u56so4108525wes.12 for ; Tue, 10 Mar 2015 12:30:39 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=date:from:to:subject:message-id:in-reply-to:references:mime-version :content-type:content-transfer-encoding; bh=VGJlL6HKyVHmwIUFRULKvVTxSCgwHREhHUCYPUyGmf0=; b=XG/T0f9G9UMs4rYa3ppWcTgoM3uV9EneLPsrpABnjcT9xYJOISowPaO5RxZbW+kuZj EhN4reIaJt1PqVsr22bHmkQF7B6oDY8BH0gUuLeerheORrrBuJi7QPJhMziptuCpqaVa nZS26l116bCeRwHZrIKt6yAHfjisqh/0NcBB4xrbR3hmOFXNQg9yZNxBGFKHykk46CI3 3hWr/PfUV2RXEz/43KVm+f897UY3HjyaHpNmBQ9T8dsWwNCOlmch+J8WSYdG8lGS53HT GVjk/UEzC+5GbKeo8wAfT8oWmVOnOD4g1yzB8V9cRdYo6RehjciJWJfns55A3lUz8/fi n2HQ== X-Received: by 10.180.79.232 with SMTP id m8mr118390688wix.81.1426015839000; Tue, 10 Mar 2015 12:30:39 -0700 (PDT) Received: from gentoo.local.lan (dynamic-109-121-71-131.adsl.eunet.rs. [109.121.71.131]) by mx.google.com with ESMTPSA id p1sm2889729wib.23.2015.03.10.12.30.38 for (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 10 Mar 2015 12:30:38 -0700 (PDT) Date: Tue, 10 Mar 2015 20:30:42 +0100 From: bitlord To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] Mysterious vanishing of DNS entry of www.youtube.com...was I hacked? Message-ID: <20150310203042.0efdd788@gentoo.local.lan> In-Reply-To: <20150310181612.GA4128@solfire> References: <20150310181612.GA4128@solfire> X-Mailer: Claws Mail 3.11.1 (GTK+ 2.24.25; x86_64-pc-linux-gnu) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Archives-Salt: aa5d5332-6412-4f9e-ba48-c8d4f1ea3ea1 X-Archives-Hash: 0322eeb5aad032efb5dc6e6463f3d0b2 On Tue, 10 Mar 2015 19:16:12 +0100 Meino.Cramer@gmx.de wrote: > Hi, > > the following happens some minutes before: > I was searching on youtube for some reviews... > and suddenly BOOM: "Server not found: Unknow host" > > I restarted firefox...which did not help. > > I did a ping & traceroute to www.youtube.com from > the commandline...same results... > > Wireshark shows the DNS query to my DSL modem... > and the answer was that from above. > > I rebooted my Gentoo box...no help... > > The problem vanishes as I powercycled my DSL modem. > > Any other access was working the whole time. > > Was my DSL modem hacked? > Does anyone else noticed a glithc in the matrix? > > Best regards, > mcc > > Today everyone can make a dsl router/modem, and ISPs when they give you equipment they want it to be cheap. I saw exactly the same problem on cheap dsl routers, I don't have enough knowledge to debug it, or to be sure if it is safe or not, it worked for months with no issues, no reboots ..., one day it stopped working/resolving hosts, and its dhcp server config doesn't allow "forwarding" of DNS servers from WAN configuration, or manually setting one which will be given to the dhcp "clients", so there are two ways, it can work as a proxy (send its own IP as DNS server to clients), or it doesn't provide DNS, so you need manually to configure each client. If you restart the router, it works sometimes for few hours, sometimes few days, but it will fail again randomly. The only worrying thing is that it worked for months without an issue.